This content is currently locked.

Your current McLean & Company subscription does not include access to this content. Contact your account representative to gain access to Premium SoftwareReviews.

Contact Your Representative
Or Call Us:
1-877-281-0480 (US/CAN) or
+1-519-936-2659 (International)

Security Orchestration, Automation, and Response (SOAR) Tools

Security Orchestration, Automation, and Response

What is Security Orchestration, Automation, and Response Tools?

SOAR refers to a solution that allows businesses to collect and analyze data from multiple sources in order to identify security incidents within their IT systems. In addition, SOAR helps to automate the management of security/operational issues, manage security tools through a single interface and coordinate responses to security incidents.

Common Features

  • Dashboards
  • Integration Capabilities
  • Management and Sharing of Intelligence
  • Collective Analytics Layer
  • Feedback Loop
  • Playbooks/Runbooks and Workflow Builder
  • Team Collaboration
  • Document & Artifact Storage
  • Automated Phishing Handling
  • Data Model
  • Integration with IR Management
  • Capable of Use Case Development
  • Case Management
  • Orchestrate & Automate

Top Security Orchestration, Automation, and Response (SOAR) Tools

2024 Data Quadrant Awards

2024 Emotional Footprint Awards

At SoftwareReviews, we take pride in recognizing excellence. Each year, we present the Data Quadrant Awards to top-performing software products based solely on authentic user reviews, without any paid placements or analyst opinions. These awards highlight software products that excel in terms of features, vendor capabilities, and customer relationships, earning them the highest overall rankings.

At SoftwareReviews, we take pride in recognizing excellence. Each year, we present the Emotional Footprint Awards to top-performing software products based solely on authentic user reviews, without any paid placements or analyst opinions. These awards shine a spotlight on software vendors who excel in crafting and nurturing strong customer relationships.

Switch to Emotional Footprint
Products: 9
Next Award: Mar 2025

Top Security Orchestration, Automation, and Response Tools 2024

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

Filter by
Cisco Systems

Splunk SOAR

Composite Score
8.2 /10
CX Score
8.5 /10

Splunk SOAR (formerly Splunk Phantom) combines security infrastructure orchestration, playbook automation and case management capabilities to streamline your team, processes and tools.

Scorecard
Scorecard

Pros

  • Enables Productivity
  • Saves Time
  • Altruistic
  • Generous Negotitation
Badge Winner
Badge Winner
Swimlane Inc.

Swimlane

Composite Score
8.2 /10
CX Score
8.4 /10

Swimlane Turbine is the world's fastest and most scalable security automation platform. It is the triple threat of automation, generative AI and low-code that security teams need to solve the most challenging problems across the entire security organization. Only Turbine can execute 25 million actions per day, 10 times faster than any other platform, provider or technology.

Scorecard
Scorecard

Pros

  • Helps Innovate
  • Performance Enhancing
  • Transparent
  • Enables Productivity
Badge Winner
Badge Winner
Tines Security Services Ltd

Tines

Composite Score
8.0 /10
CX Score
8.3 /10

Tines is an automation platform designed to allow anyone to connect their technology stack and automate any repetitive manual task, regardless of complexity. No integrations, apps, plugins, or custom code required.

Scorecard
Scorecard

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing
Badge Winner
Badge Winner
Palo Alto Networks

Cortex XSOAR

Composite Score
7.9 /10
CX Score
8.2 /10

Cortex XSOAR is a comprehensive security orchestration, automation and response (SOAR) platform that unifies case management, automation, real-time collaboration, and threat intelligence management to serve security teams across the incident lifecycle.

Scorecard
Scorecard

Pros

  • Helps Innovate
  • Continually Improving Product
  • Reliable
  • Performance Enhancing
Badge Winner
Badge Winner
Fortinet

FortiSOAR

Composite Score
7.6 /10
CX Score
8.0 /10

Integrated into the Fortinet Security Fabric, FortiSOAR security orchestration, automation and response (SOAR) remedies some of the biggest challenges facing cybersecurity teams today. Allowing security operation center (SOC) teams to create a custom automated framework that pulls together all of their organization's tools unifies operations, eliminating alert fatigue and reducing context switching. This allows enterprises to not only adapt, but also optimize their security process.

Scorecard
Scorecard

Pros

  • Helps Innovate
  • Continually Improving Product
  • Enables Productivity
  • Efficient Service
Composite Score
7.5 /10
CX Score
7.8 /10

Cloud SOAR (Formerly IncMan SOAR) improves incident response time with flexible workflow automation across tools and teams. Machine learning distinguishes real threats from false positives to reduce alert fatigue.

Scorecard
Scorecard

Pros

  • Trustworthy
  • Efficient Service
  • Effective Service
  • Caring
Composite Score
7.3 /10
CX Score
7.6 /10

IBM Resilient Security Orchestration, Automation and Response (SOAR) Platform (Formerly IBM Resilient SOAR) is the leading platform for orchestrating and automating incident response processes. IBM Resilient SOAR Platform quickly and easily integrates with your organization’s existing security and IT investments. It makes security alerts instantly actionable, provides valuable intelligence and incident context, and enables adaptive response to complex cyber threats.

Scorecard
Scorecard

Pros

  • Reliable
  • Trustworthy
  • Respectful
  • Fair
Badge Winner

Products below are ineligible for awards due to insufficient recent reviews

KnowBe4

PhishER

Composite Score
7.2 /10
CX Score
7.2 /10

With automatic prioritization for emails, PhishER™ helps your InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.

Pros

  • Helps Innovate
  • Continually Improving Product
  • Trustworthy
  • Efficient Service

Cons

  • Less Reliable
  • Less Performance Enhancing
  • Less Productive
Composite Score
7.1 /10
CX Score
7.3 /10

Security orchestration and automation for faster, consistent, and comprehensive incident response.

Pros

  • Helps Innovate
  • Reliable
  • Performance Enhancing
  • Enables Productivity
Composite Score
6.9 /10
CX Score
7.1 /10

Chronicle’s cloud-native security, orchestration, automation and response (SOAR) product (formerly Siemplify) empowers security teams to respond to cyber threats in minutes - not hours or days. Chronicle SOAR fuses a unique threat-centric approach, powerful yet simple playbook automation, and context-rich investigation to free up valuable time and ensure every security team member is informed, productive and effective.

Scorecard

Pros

  • Helps Innovate
  • Performance Enhancing
  • Respectful
  • Security Protects